mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-02-05 13:40:08 +08:00
Code Issues Packages Projects Releases Wiki Activity
2,013 Commits 38 Branches 307 Tags 75 MiB
fd49eacc4b
Commit Graph

727 Commits

Author SHA1 Message Date
Julio Sánchez Fernández
fd49eacc4b Parse more TLS options in slapd.conf 1999-07-15 21:05:08 +00:00
Julio Sánchez Fernández
d92c7c1c7d A couple of options for TLS configuration. Still a conflict here, 
the default context is initialized before the config file is read,
so the locations are not know at context initialization.
 1999-07-15 15:04:02 +00:00
Julio Sánchez Fernández
1df71e1814 Get rid of two compilation warnings. One is thought to be properly 
taken care of.  The second, however, on remove_old_locks is unclear.
 1999-07-14 19:51:35 +00:00
Julio Sánchez Fernández
e74ff638ba Parsing of flag -T was falling through to the default case. 
Init the TLS environment if necessary.  Lots of things needed here,
in particular, preparing properly the default context.
 1999-07-14 19:49:39 +00:00
Julio Sánchez Fernández
6d75d0f8fb connection_init now takes one more argument that indicates whether to 
use TLS right away or not on that connection.
 1999-07-14 19:44:18 +00:00
Julio Sánchez Fernández
c18d6e7ecf Only bind on TLS port if explicitly requested with -T, otherwise all 
kind of conflicts happen when running tests.
 1999-07-14 13:39:30 +00:00
Julio Sánchez Fernández
5b7babdee4 Bind and listen on TLS port too 1999-07-14 13:16:13 +00:00
Julio Sánchez Fernández
8542e45380 Extend slapd_args with TLS info 1999-07-14 13:14:54 +00:00
Julio Sánchez Fernández
0dac59ca26 Include $(TLS_LIBS) 1999-07-13 19:15:14 +00:00
Kurt Zeilenga
12b87ceebc Fix debug message. 1999-07-13 08:24:26 +00:00
Hallvard Furuseth
fb3b8e5ef1 Fix LDAP_CONNECTIONLESS code rot 1999-07-13 06:39:55 +00:00
Hallvard Furuseth
c4a13efbea Fix NULLxxx -> NULL 1999-07-13 06:37:19 +00:00
Hallvard Furuseth
4e80e9b9f2 Add opattrs=0 arg to send_search_entry() call 1999-07-13 05:05:59 +00:00
Hallvard Furuseth
b5455b8e47 Erase bad space from blank Makefile line 1999-07-13 04:13:21 +00:00
Hallvard Furuseth
55fa595f56 Add missing newline at EOF 1999-07-13 04:11:49 +00:00
Hallvard Furuseth
7e3ede2e01 Erase bad space from blank Makefile line 1999-07-13 04:01:25 +00:00
Kurt Zeilenga
5e14b911e6 Mirror <ac/time.h> inclusion made in re12 1999-07-09 21:10:19 +00:00
Kurt Zeilenga
469baeb3c0 Forgot the most important part of unsolicited notifications... exop! 1999-07-07 18:53:51 +00:00
Kurt Zeilenga
e9c2895472 Add support for unsolicited notifications. 1999-07-07 18:51:39 +00:00
Kurt Zeilenga
b8edef2b2c Copy LDBM bind "ACL_AUTH" and SASL framework to bdb2. 1999-07-07 18:47:51 +00:00
Kurt Zeilenga
7541ccbe10 Fix CRITICIAL typo. 1999-07-07 18:32:41 +00:00
Kurt Zeilenga
6c1758ae33 Add matching rule assertion structure to filter union. 1999-07-07 18:02:32 +00:00
Kurt Zeilenga
fb593fc5b9 Add controls.c to pick up get_ctrls(). 1999-07-05 23:08:43 +00:00
Kurt Zeilenga
32cefa43a0 Add controls.c: initial version of get_ctrls() 1999-07-05 23:04:35 +00:00
Kurt Zeilenga
00086db3f6 Add get_ctrls()... 1999-07-05 23:01:17 +00:00
Kurt Zeilenga
51d1c90887 unifdef -DSLAPD_ACLGROUPS -DSLAPD_ACLAUTH 1999-07-05 06:26:26 +00:00
Kurt Zeilenga
549c89f817 Regarding previous commit: 
Fix broken ACL macros.
	Fix o_dn/o_ndn == NULL vs "".
 1999-07-04 19:53:00 +00:00
Kurt Zeilenga
49f39bc4cf o_dn/o_ndn must not be NULL. Set to "" upon receiving bind request. 1999-07-04 19:37:25 +00:00
Kurt Zeilenga
106eef41d8 HEADS UP: connections are forced to "anonymous" status upon receiving 
of a bind request and, upon failure, are left "anonymous."

Rework ACL code to hide access testing within macros to facilate additions
and eventual redesign.

Addition of #ifdef SLAPD_ACLAUTH to conditional include EXPERIMENTAL
"auth" access controls.  Adds ACL_AUTH "auth" access level (above none,
below "compare").  bind requires anonymous access at this level or above access
to "entry"/"userPassword"/"krbName".  This allows administrators to restrict
which entries can be bound to.  (This will likely become default behavior
after testing has completed).
 1999-07-04 18:46:24 +00:00
Kurt Zeilenga
daf40a51c1 Abandon all operations upon receiving a BindRequest. 1999-07-02 21:42:53 +00:00
Kurt Zeilenga
b7bbc7504d More bind changes to support SASL/DIGEST. 
Added configuration support for "digest-realm <realm>" configure directive.
Added connection state and bind_in_progress fields to cn=monitor connection
attribute.
 1999-07-02 19:48:07 +00:00
Kurt Zeilenga
175ace59c8 Send LDAP_SASL_BIND_IN_PROGRESS if o_bind_in_progress is true. 1999-07-02 00:46:28 +00:00
Kurt Zeilenga
6f8fad20f2 Add conn/op bind_in_progress flags such that operations can detect 
if multiple step SASL binds are in progress.
 1999-07-02 00:04:47 +00:00
Kurt Zeilenga
97bc107537 Add macros to support testing of error categories to ldap.h 
Modify ldap_result to assert returned error is not an one reserved
for API use.
Modify frontend LDAP operation routines to return an error code.
The returned value will be used to determine if an unsolicited notification
should be sent to the client.
Need to review returned error codes.  Namely some LDAP_PROTOCOL_ERROR
will like need to be changed (as they will cause unsolicited notifications).
 1999-07-01 21:20:45 +00:00
Kurt Zeilenga
d7b311c6e1 s/LDAP_NOT_SUPPORTED/LDAP_UNWILLING_TO_PERFORM/ 1999-07-01 04:43:48 +00:00
Kurt Zeilenga
ddd0559284 Fairly complete slapd SASL bind parsing... and centralized cleanup code. 
Update error strings and cldap misuse of server error.
 1999-07-01 04:42:01 +00:00
Kurt Zeilenga
129ee42f37 NO-OP SASL parsing... DIGEST-MD5 coming soon. 1999-07-01 03:18:00 +00:00
Kurt Zeilenga
f9db1ea889 Rework BER decoding with lieu of LDAPv3 controls (coming soon). 
Add place holder for handling LDAPv3 extended operations (coming soon).
 1999-06-30 22:43:27 +00:00
Kurt Zeilenga
14820afdd9 Reimplement connection counters. Format of "connection" attribute 
changed significantly.
 1999-06-30 02:50:40 +00:00
Kurt Zeilenga
9225707a06 Modify lutil_passwd to accept a third argument char** methods to 
specific which methods may be used.  This will facilate development
of a slapd config directive "passwordMethod ..." to specify which
methods should be allowed.
 1999-06-29 22:24:53 +00:00
Kurt Zeilenga
fe00263875 expose oc_check_operational from schema.c 
Use everywhere.
Apply search ACLs to operational attributes.
Only provide operational attributes when explicitly requested.
 1999-06-29 04:52:55 +00:00
Kurt Zeilenga
a7dfc2aada Add sasl "mech" argument to backend bind routines. 1999-06-29 03:29:26 +00:00
Kurt Zeilenga
1ee85df297 Add framework for sasl and controls. 1999-06-29 03:17:22 +00:00
Kurt Zeilenga
c0af81253a remove obsolete file. 1999-06-29 03:01:02 +00:00
Kurt Zeilenga
dcc5bdfe7e Log out to stderr, add LDAP_VERSION3 support to bind.c and modrdn.c 1999-06-29 01:02:48 +00:00
Kurt Zeilenga
2660d0b42f Remove old U-Mich v3.0 and OLD_LDAP_* crud. 
Leave only LDAPv2+ and LDAPv3.
 1999-06-29 00:03:34 +00:00
Kurt Zeilenga
cf89dd83cd don't set unsigned variables to -1 and expect them to be negative. 
verify uid/gid are positive, not non-negative.
 1999-06-27 03:58:06 +00:00
Bastiaan Bakker
5a470f8959 Merged dynamic module support patch (see ITS #196). To enable, run ./configure w 
ith --enable-modules. GLib v1.2 or higher is required.
 1999-06-24 17:06:34 +00:00
Bastiaan Bakker
e2b5b21155 Added connection initialisation and destruction notification. Now backends can register functions in backend_info.bi_connection_init and backend_info.bi_connection_destroy that will be called when a connection is initialized or destroyed. 1999-06-23 12:31:35 +00:00
Kurt Zeilenga
0b924192e7 Move nt_debug to -llutil and generalize for all platforms. 1999-06-21 22:52:28 +00:00